Privacy Act of 1974; Matching Program
HHS/CMS re-establishes a matching program under the Privacy Act of 1974, affecting data sharing between CMS and other entities. This may require businesses handling Medicare/Medicaid data to review and update their data matching agreements and privacy practices.
Aforeworn detected this change in the US State Data-Privacy Laws space on July 5, 2026 and published this briefing so affected operators are forewarned rather than caught off guard. It is rated Low urgency. Businesses that handle CMS data, including healthcare providers, insurers, and data processors involved in Medicare/Medicaid programs. should confirm how it applies to their specific situation before acting. There is a time constraint attached: No immediate deadline; program effective upon publication (June 30, 2026).. Acting after that point can mean penalties, a lapsed licence, or lost eligibility — exactly the kind of surprise Aforeworn exists to prevent. Aforeworn monitors US State Data-Privacy Laws continuously and turns every detected change into a plain-English briefing like this one, so you always know first. Forewarned is forearmed.
What changed
Re-establishment of a matching program between CMS and other parties, formalizing data sharing for program integrity purposes.
Who it affects
Businesses that handle CMS data, including healthcare providers, insurers, and data processors involved in Medicare/Medicaid programs.
What you must do
Review existing data matching agreements and ensure compliance with Privacy Act requirements, including notice and consent provisions.
Deadline
No immediate deadline; program effective upon publication (June 30, 2026).
Source: https://www.federalregister.gov/documents/2026/06/30/2026-13099/privacy-act-of-1974-matching-program
Never miss a change like this again
Aforeworn watches US State Data-Privacy Laws around the clock and alerts you the moment a rule moves — with a plain-English brief on what to do.
Start your free trialRelated changes in US State Data-Privacy Laws
- California Consumer Privacy Act (CCPA) | State of California - Department of Justice - Office of the Attorney General
- Law & Regulations - California Privacy Protection Agency (CPPA)
- Privacy Act of 1974; System of Records
- Intent To Request Extension From OMB of One Current Public Collection of Information: Security Threat Assessment for Individuals Applying for a Hazardous Materials Endorsement for a Commercial Driver's License
- Fee Adjustment for U.S. Immigration and Customs Enforcement Form I-246, Application for a Stay of Deportation or Removal